1 to 25 of 123 Security Management Jobs in the UK excluding London

The team you'll be working with: The Security Architect will be responsible for the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: - Identify business objectives, user needs, risk appetite and cyber security obligations - Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls - Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client … end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments More ❯

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters within the security and compliance domain such that the company remains secure against the ever-changing security threat and compliance landscape. Information Security Strategy Create and maintain the Company's strategy, ensuring alignment to the Company's strategy and business goals. Work across internal and external stakeholders, communicating the information security strategy to relevant parties and providing assurance of … policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible for the Company's information security capability, ensuring it remains secure against an More ❯

Cyber/Info Security Strategist/Consultant - Architect - Leeds 674 60,000 plus 10% bonus and benefits + free parking Here we have a brand-new LEAD Information/Cyber Security vacancy, based in Leeds. Position: Lead Information/Cyber Security Officer Size of team: 15 FTE's Salary: 60k & added bonus 10% + other % benefits Key … Stakeholders: Heads of Departments, Directors, CIO Main purpose of job As a key member of the Information/Cyber Security team, the Lead Information/Cyber Security Officer will be engaged with the business and provide consultative and specialist services to assist and improve its information security posture ensuring secure business processes and delivering secure services to … processes and the current/emerging threat landscape, ensuring risks are identified and managed with appropriate best practice controls and measures. Key responsibilities Implementation of the Information/Cyber Security strategy and measurement of progress through performance metrics. Contribute to the development of policies, standards and guidelines and ensure these are embedded within the business. Contribute to the development More ❯

The Head of Security Assurance is responsible for leading the Security Assurance Department primarily made up of Security Assurance coordinators. The Head of Security Assurance is responsible for the co-ordination of all security assurance activities to ensure that SecureCloud+ services and supporting internal Information Technology meets the highest security standards and requirements of … our customers. The role will support the delivery of a variety of innovative, accreditable, cost efficient and profitable solutions to comply with HMG's security classification system, and will also lead on the transformation of delivery of services to the MOD's secure by design methodology. The Head of Security Assurance will encompass two key areas of Information … disruption and destruction to achieve the objectives of data integrity, availability and confidentiality. Role Responsibilities Key responsibilities for this role may include: Lead and Manage all members of the Security Assurance department. Mentor junior members of the Security Assurance department. Promote a strong security culture within the company. Co-ordinate the security accreditation and assurance processes More ❯

Are you currently working for an IT provider but ready to step into the world of dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance Team … s service offerings forward. Work with a innovative, industry-leading Cyber Security team Play a key role in the development of internal and client security programs Contribute to significant projects that support clients' compliance and risk management goals If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities: Ensure … protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team with scoping engagements and delivering valuable services More ❯

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. … You will ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk … risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including More ❯

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. … You will ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk … risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including More ❯

DR Advisor in developing and maintaining IT resilience and business continuity plans to ensure the organisation's ability to respond to and recover from IT disruptions. Incident Response and Management: Support DR-related incident response activities, including investigating IT security incidents, breaches, and disruptions. Issue Identification: Identify and document control deficiencies, compliance gaps, and areas for improvement. Collaborate … to develop actionable recommendations and corrective action plans. Documentation and Reporting: Maintain accurate documentation of risk assessments, compliance reviews, control testing activities, and remediation efforts. Prepare regular reports for management and stakeholders. Policy and Procedure Development: Assist in developing and maintaining risk management, compliance, and control-related policies, procedures, and guidelines, ensuring alignment with regulatory requirements and industry … best practices. Vendor Risk Management Support: Assist in assessing and managing risks associated with third-party vendors and service providers, evaluating controls and contractual adherence. Continuous Improvement: Identify opportunities to enhance risk management, compliance, and control processes. Recommend and implement improvements to strengthen the organisation's environment. Project Work: Contribute to project activities to ensure GRC requirements are More ❯

Join our dynamic team as a Security Operations Manager, where you'll lead and enhance our security strategies to protect critical assets and ensure operational resilience. WHO ARE WE? Privately owned and independently minded, Creditsafe operates with the singular vision of powering business decisions. We do this by delivering valuable intelligence on customers, suppliers and potential buyers to … intelligence accessible to all businesses big and small but most importantly, opened up new avenues of data intelligence for businesses with machine learning, AI and connected data. From risk management through to opportunity identification, our industry-leading solutions, power decisions for companies by turning their data into actionable insights that help them become stronger, grow faster and thrive. THE … TEAM Creditsafe’s Information Security and Compliance team are motivated by protecting company reputation, safeguarding existing revenue, and supporting the generation of future revenue. We realise that security can often be misunderstood so our approach is enabling new and existing customers to interact with our products and services, and we pride ourselves on balancing a positive security More ❯

Remote (UK-based candidates preferred) Contract Type: Contract - 3 to 6 months Day Rate: £790 per day (inside IR35) via Umbrella company Clearance: Candidates must be eligible for SC (Security Clearance) or hold active SC clearance. Subject to client approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking … a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management System (ISMS) aligned with multiple industry standards and frameworks. This is a fully remote position, offering flexibility while working … impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO/IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and More ❯

Information Security Analyst – FMCG, North Lanarkshire 📍 Location: North Lanarkshire (Hybrid working) 💼 Salary: £55k+ Comprehensive Benefits Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a skilled Information Security Analyst to join our client and lead the implementation and operation … of essential security controls that underpin their enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. 🔧 Key Responsibilities We are seeking an experienced Information Security Analyst to safeguard client’s digital assets and ensure alignment with … their Information Security Management System (ISMS). You’ll lead the design, implementation, and monitoring of security controls, supporting the group of companies in compliance with global frameworks. You’ll manage Vendor Security Assurance, review solution designs, and conduct risk-based assessments to integrate security into commercial initiatives. Collaboration with wider group and cross-functional More ❯

Information Security Analyst – FMCG, North Lanarkshire Location: North Lanarkshire (Hybrid working) Salary: £55k+ Comprehensive Benefits Package Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a skilled Information Security Analyst to join our client and lead the implementation and operation … of essential security controls that underpin their enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. Key Responsibilities We are seeking an experienced Information Security Analyst to safeguard client’s digital assets and ensure alignment with … their Information Security Management System (ISMS). You’ll lead the design, implementation, and monitoring of security controls, supporting the group of companies in compliance with global frameworks. You’ll manage Vendor Security Assurance, review solution designs, and conduct risk-based assessments to integrate security into commercial initiatives. Collaboration with wider group and cross-functional More ❯

values: Weare Adventurous .We believe it'sthewaytodeliverextraordinaryresultsforourpatients. Weare DedicatedtoourMission .Youcan'tchangetheworldifyoudon'thavedetermination. Weare OneTeam .Weonlysucceedwhenweworktogether. Job Description We have an exciting new opportunity for an experienced Information and Cyber Security Manager to join our growing team. In this role you will operate and continuously improve the organisation's cyber and information security capabilities. Working closely across our business … in the UK, with routine travel to our Cambridge site. Additionally, we would also consider those than can commit to working at least 0.8 FTE. As the Information & Cyber Security Manager, you will be responsible for: Security Operations Center Lead (SOC Lead) for Bicycle ensuring that incidents are detected, analysed, responded to and reported effectively to protect Bicycle … Therapeutics daily activities. Threat intelligence and proactive defence to predict and proactively defend against cyberattacks Proactive maintenance and continuous improvement of the Cyber Security Management System to ensure effective protection and resilience is maintained Management and continuous improvement of the Information Security Management System that is in place. Proactive assessment of information security risks More ❯

has more than 2,500 colleagues, generates £315m in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the Global CISO, the … role will support the creation, development and implementation of the Information Security strategy and operations. The Information Security Officer will play a crucial role in servicing client requirements relating to information security (including Military, Defence and Critical National Infrastructure) whilst working with stakeholders across the globe to identify, manage and assess information security risks. The ISO … will work proactively with Clients, IT Operations, Security Operations, Legal, Procurement, Learning and Delivery Teams to reduce and manage risk, increase awareness and champion adherence to our Information Security processes, policies, and procedures. Key Responsibilities: Developing and maturing our supply chain verification. Working with suppliers and clients to ensure our security requirements and those of our clients More ❯

based MIS solution for the UK education sector. We are committed to innovation, service excellence, and data security. To support our growing needs, we are seeking an experienced IT & Security Manager to lead and oversee our entire IT infrastructure and cybersecurity strategy. As IT & Security Manager, you will be responsible for managing all aspects of Bromcom's IT … systems, infrastructure, and security framework. You will lead initiatives to ensure performance, scalability, and resilience while embedding a security-first culture across the organisation. This is a critical cross-functional leadership role reporting to senior management and working closely with technical and compliance teams. Travel Requires infrequent but regular travel to Bromcom Head quarters in Bromley and … to offices in Northern Ireland. Key Responsibilities IT Management Lead daily IT operations, infrastructure maintenance, and support services. Ensure efficient performance of systems, networks, and business-critical applications. Manage IT documentation, inventory, and reporting (e.g., SharePoint, SupportDesk). Oversee IT budgeting, procurement, and vendor relations. Plan and execute hardware/software upgrades and replacements. Maintain and update Employee and More ❯

Job Title: Information Security Compliance Analyst Location: Hertfordshire, UK (Hybrid) Contract: 12-Month Fixed Term (Salaried) Are you passionate about cybersecurity, compliance, and driving risk management strategies? We’re seeking an experienced Information Security Compliance Analyst to join a dynamic team supporting the development and maintenance of an EMEA-wide Information Security Management System. This … role plays a critical part in maintaining ISO 27001:2022 certification, ensuring compliance with legislation including NIS 2, GDPR, and the AI Act, and promoting a strong security culture across the business. Requirements: ISO 27001 Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of frameworks like ISO …/27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an exciting opportunity for someone who thrives in a fast-paced, regulated environment and wants to make a real impact in protecting systems, data, and operations across multiple regions. If you More ❯

Job Title: Cyber Security Manager Location: Flexible Hybrid Working - Around 2 days in the office at NNC Rate of Pay: £400 per day Umbrella OR £ PAYE £311.12 per day PAYE Working Hours: Full time - 37 hours per week Type: Temporary role - Inside IR35 - Up to 9 months Opus People Solutions are working with North Northamptonshire Council to recruit for … a Cyber Security Manager. Purpose of the job North Northamptonshire Council is going through a period of large-scale strategy and transformation to bring together our estates as well as create world leading services for our citizens. We have an ambition to create brilliant and modernised services; to use modern platforms and infrastructure; and to make the best out … of our investments in our technology and teams. This is a vital role in that journey, responsible for ensuring that we design and implement security right from the beginning of our journey, mitigating and managing technical risks to data and the organisation. This role is responsible to the Chief Information Officer of North Northants Council for: Providing expert advice More ❯

Job Title: Cyber Security Manager Location: Flexible Hybrid Working - Around 2 days in the office at NNC Rate of Pay: £400 per day Umbrella OR £ PAYE £311.12 per day PAYE Working Hours: Full time - 37 hours per week Type: Temporary role - Inside IR35 - Up to 9 months Opus People Solutions are working with North Northamptonshire Council to recruit for … a Cyber Security Manager. Purpose of the job North Northamptonshire Council is going through a period of large-scale strategy and transformation to bring together our estates as well as create world leading services for our citizens. We have an ambition to create brilliant and modernised services; to use modern platforms and infrastructure; and to make the best out … of our investments in our technology and teams. This is a vital role in that journey, responsible for ensuring that we design and implement security right from the beginning of our journey, mitigating and managing technical risks to data and the organisation. This role is responsible to the Chief Information Officer of North Northants Council for: Providing expert advice More ❯

Product Security Engineer Salary 60k + Benefits Based Bristol with Hybrid Working We are taking applications for this exclusive vacancy to work for our client, a global defence tech organisation as Product Security Engineer. In this exciting role the successful candidate will be responsible for ensuring that software, hardware, and service products are designed, developed, and maintained with … strong security features. The role involves identifying and mitigating security risks throughout the product lifecycle, conducting risk assessments, and collaborating with development teams to integrate secure coding practices. Key Responsibilities: Conduct risk assessments, identify vulnerabilities, and implement mitigation measures. Integrate secure coding practices into the software development lifecycle. Perform security code reviews and ensure secure-by-design … principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct penetration testing, vulnerability assessments, and remediation activities. Key More ❯

Product Security Engineer Salary £60k + Benefits Based Bristol with Hybrid Working We are taking applications for this exclusive vacancy to work for our client, a global defence tech organisation as Product Security Engineer. In this exciting role the successful candidate will be responsible for ensuring that software, hardware, and service products are designed, developed, and maintained with … strong security features. The role involves identifying and mitigating security risks throughout the product lifecycle, conducting risk assessments, and collaborating with development teams to integrate secure coding practices. Key Responsibilities: Conduct risk assessments, identify vulnerabilities, and implement mitigation measures. Integrate secure coding practices into the software development lifecycle. Perform security code reviews and ensure secure-by-design … principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct penetration testing, vulnerability assessments, and remediation activities. Key More ❯

Job Description: The opportunity: Leonardo UK is seeking a proven and experienced Principal Consultant to join the Cyber & Security Solutions Division team. This role is focused on the delivery of one of the company's core products to an existing customer. This role will lead a team that will oversee, co-ordinate and deliver all facets of cyber and … information security related to the delivery across an engineering lifecycle - from requirements all the way through to in-service support and maintenance. This is an exciting opportunity at the very beginning of a significant programme, during which you will ensure that the product and associated deliverables are as secure as reasonably practicable, and in accordance with customer's requirements … and working on site at one of our Leonardo offices and closely with our customers. Talk to us to find out more. What you'll do as a Principal Security Consultant: Leading a team to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management More ❯

Upto £75,000 per annum plus car, company bonus and Private medical cover Join Serco's UK & Europe division as a Security Architect and be at the forefront of shaping our IT security landscape with the Armed Forces Recruitment Service (AFRS) team. In this pivotal role, you'll translate business needs into actionable security solutions, identifying and … current IT capabilities. You'll define innovative strategies to bridge these gaps, ensuring seamless alignment between project delivery, overall strategy, and architecture. Take the lead in driving critical IT security workstreams and make a lasting impact on the resilience and effectiveness of our systems. As our Security Architect, you'll take the lead in shaping Serco's security strategy. You'll drive key decisions on technology selection, guide seamless implementations, and oversee ongoing security services. By maintaining a detailed and robust security architecture across all systems, you'll ensure a solid foundation for future design and innovation in our security technology landscape. Main responsibilities of the role: Support execution of IT security workstreams More ❯

Information Security & Business Continuity Coordinator Purpose: TVS are recruiting an Information Security & Business Continuity (ISBC) Coordinator to develop and maintain an already established information security management system certified to ISO27001 and a business continuity management system certified to ISO22301 across several UK sites. The successful candidate will have a working knowledge of ISO standards, understand … risk management and be able to communicate effectively at all levels. Main Duties & Responsibilities: Support the maintenance, development and continual improvement of ISBC Management System Coordinate and assist in internal audits to maintain ISO 27001 and ISO 22301 compliance Track and follow up on corrective and preventive actions resulting from audits or incidents Maintain documentation, records, and registers … in accordance with ISO standards Assist in managing the risk assessment and treatment processes Monitor compliance with policies, procedures, and controls Support incident management and business continuity testing activities Organise and deliver awareness training and communication efforts related to compliance topics Contribute to and partake in external, regulatory and customer surveillance visits Help ensure that day-to-day operations More ❯

team members, and handling escalations and major incidents through to resolution. This is an office-based role, Monday to Friday, based in Hertford, Hertfordshire. Key Responsibilities: Overall Service Operations Management: Oversee the daily operations of the IT service desk, ensuring tickets are processed in accordance with established procedures and SLAs. Develop and implement best practices for managing tickets, including … Manage escalations from 1st and 2nd line support teams, ensuring timely and effective resolution of complex issues interfacing with 3rd line across the wider business. Lead incident and problem management processes, including root-cause analysis for recurring incidents, working closely with internal teams and external vendors. Own and manage the organisation’s IT Service Management (ITSM) platform (HALO … Level 3 engineers to ensure effective support and delivery of services, particularly around Microsoft 365 and infrastructure platforms. Support service reporting, governance, and compliance activities. Service Level Agreement (SLA) Management: • Monitor IT service performance to ensure compliance with SLAs, managing ticket queues and ensuring incidents are resolved in a timely manner. • Proactively identify and mitigate potential SLA breaches through More ❯

wellbeing at work for employees while protecting the planet. The IT Compliance and Risk Manager is responsible for developing, implementing and overseeing the organisation's IT compliance and risk management programmes, with a strong focus on maintaining the ISO 27001 and ISO 90001 certifications. The role ensures that IT security and operations align with global Pluxee policies & procedures … as well as regulatory, legal, GDPR and industry standards while mitigating risks and enhancing overall posture. Respond to client Information Security tenders and questionnaires, establish and maintain a central repository of documentation available for Sales and Planning Team access. 🚀 Your next challenge: Lead and manage the organisation's ISO certification and surveillance audit processes. Develop and maintain policies, procedures … NIST etc Serve as a subject-matter expert for IT compliance questions Develop and enforce IT policies and procedures that support compliance and risk objectives. Respond to client Information Security tenders and questionnaires. Conduct training and awareness programmes. Accountabilities: Maintain ISO certification and promote the standards within the business. Quarterly reporting to SLT on compliance status, IT risk posture. More ❯